$ rpki-client -vvf rpki.apnic.net/member_repository/A9112707/B4ACE16470B611E49CCAF16FC4F9AE02/39932724578611EA8CC3B124C4F9AE02.roa File: 39932724578611EA8CC3B124C4F9AE02.roa (raw, json) Hash identifier: 3ffKspDDCMwFhMU04xxlteFDU4SgN8Gby605uNp3lZA= Subject key identifier: 2F:94:89:70:B3:88:B9:BB:C3:DD:95:22:81:AB:39:B3:B6:90:F7:E0 Certificate issuer: /CN=A9112707/serialNumber=C1E227651ADA3BFBC18771AEC8B60026723B60AD Certificate serial: 28AD Authority key identifier: C1:E2:27:65:1A:DA:3B:FB:C1:87:71:AE:C8:B6:00:26:72:3B:60:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/weInZRraO_vBh3GuyLYAJnI7YK0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112707/B4ACE16470B611E49CCAF16FC4F9AE02/39932724578611EA8CC3B124C4F9AE02.roa Signing time: Fri 06 Dec 2024 16:02:29 +0000 ROA not before: Fri 06 Dec 2024 16:02:29 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 14618 IP address blocks: 103.43.38.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112707/B4ACE16470B611E49CCAF16FC4F9AE02/weInZRraO_vBh3GuyLYAJnI7YK0.crl rsync://rpki.apnic.net/member_repository/A9112707/B4ACE16470B611E49CCAF16FC4F9AE02/weInZRraO_vBh3GuyLYAJnI7YK0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/weInZRraO_vBh3GuyLYAJnI7YK0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10413 (0x28ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112707 Validity Not Before: Dec 6 16:02:29 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67532014-c0e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:fe:da:e7:d9:e8:de:51:e6:99:f3:0d:05:5f: 58:9f:1a:27:0a:29:97:93:76:6a:eb:14:06:2c:1e: 2b:45:57:90:6f:c6:76:a8:d3:ca:d8:57:67:b3:8a: 2a:03:b8:cf:58:87:39:05:48:28:b1:72:b3:ff:67: 81:0c:d4:99:e0:2d:6e:86:65:77:b0:34:ca:7b:f1: 95:07:0e:c0:5f:84:64:63:3a:91:8e:b1:86:43:42: 9f:68:c3:92:74:a6:8c:42:e2:b8:2b:9a:f7:e4:0c: 4d:f5:d1:85:0e:4b:eb:13:2e:cb:29:ec:f5:78:31: 6e:f9:a6:c7:e7:2a:02:44:6b:df:d6:de:7d:f9:df: ac:d2:0c:1c:46:07:b3:23:4f:b1:8b:34:09:66:48: c9:b0:4f:0c:de:75:4e:fc:51:64:a4:01:b7:c3:29: 38:79:ac:4e:96:f4:2d:99:89:6e:0a:67:31:7c:ab: 87:b7:cf:88:c8:21:9a:a1:a0:bb:19:93:15:e3:81: 6e:07:ed:4f:2d:13:b1:d1:c1:d4:ca:f3:21:4a:48: ce:2f:f2:de:9b:ec:0e:75:0a:e1:b1:43:cf:cb:28: 55:a6:cf:76:7d:41:78:ad:d0:37:6e:3b:f6:2e:ce: 7a:89:b2:02:6e:44:3b:62:09:e9:dc:2d:9e:59:e4: 26:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:94:89:70:B3:88:B9:BB:C3:DD:95:22:81:AB:39:B3:B6:90:F7:E0 X509v3 Authority Key Identifier: keyid:C1:E2:27:65:1A:DA:3B:FB:C1:87:71:AE:C8:B6:00:26:72:3B:60:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112707/B4ACE16470B611E49CCAF16FC4F9AE02/weInZRraO_vBh3GuyLYAJnI7YK0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/weInZRraO_vBh3GuyLYAJnI7YK0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112707/B4ACE16470B611E49CCAF16FC4F9AE02/39932724578611EA8CC3B124C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.43.38.0/23 Signature Algorithm: sha256WithRSAEncryption b0:5a:9f:02:b2:17:e6:be:6f:a6:73:0f:2d:4d:87:4d:e2:d5: 96:93:a9:61:94:cb:3f:e1:d0:6b:69:e1:11:7b:85:6d:82:94: 41:a7:2e:a5:74:3d:11:ce:cd:d0:f4:66:43:78:93:7f:73:24: 98:ee:a3:92:f3:0b:86:ed:6c:f0:ca:4a:0d:e6:79:f6:59:33: 2d:4e:b3:5c:c0:3a:79:27:f9:36:b7:f5:95:84:2b:f7:05:4b: 61:57:04:2f:a8:e9:e0:a0:ee:27:c6:8b:cf:2d:8b:ee:23:cb: 50:10:62:79:44:c8:8e:23:db:d3:93:af:9e:35:55:87:5f:01: d3:90:3b:a3:0a:1d:47:92:93:68:1f:53:a4:3e:b3:32:c2:b7: eb:c8:78:be:55:7b:22:5f:f2:3a:48:23:81:f6:13:9d:c7:5e: 4f:29:82:7d:df:08:a6:ef:09:46:d1:bd:2b:5a:52:7e:fd:ea: 92:ab:1f:eb:83:fd:aa:b8:a0:f8:ab:5d:03:9d:0e:a4:01:7c: 40:88:9a:5c:a4:9f:c5:ee:31:e2:51:59:ed:63:65:ac:ea:a6: 11:2c:94:f8:68:01:60:08:df:ce:00:2a:65:a8:be:91:40:39: 93:bd:23:51:c6:8c:69:ff:02:28:e7:8f:9b:61:ed:26:b8:d0: 6a:53:d6:ca -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICKK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI3MDcxMTAvBgNVBAUTKEMxRTIyNzY1MUFEQTNCRkJDMTg3NzFBRUM4QjYwMDI2 NzIzQjYwQUQwHhcNMjQxMjA2MTYwMjI5WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzUzMjAxNC1jMGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2/7a59no3lHmmfMNBV9YnxonCimXk3Zq6xQGLB4rRVeQb8Z2qNPK2Fdns4oq A7jPWIc5BUgosXKz/2eBDNSZ4C1uhmV3sDTKe/GVBw7AX4RkYzqRjrGGQ0KfaMOS dKaMQuK4K5r35AxN9dGFDkvrEy7LKez1eDFu+abH5yoCRGvf1t59+d+s0gwcRgez I0+xizQJZkjJsE8M3nVO/FFkpAG3wyk4eaxOlvQtmYluCmcxfKuHt8+IyCGaoaC7 GZMV44FuB+1PLROx0cHUyvMhSkjOL/Lem+wOdQrhsUPPyyhVps92fUF4rdA3bjv2 Ls56ibICbkQ7Ygnp3C2eWeQmdwIDAQABo4IClTCCApEwHQYDVR0OBBYEFC+UiXCz iLm7w92VIoGrObO2kPfgMB8GA1UdIwQYMBaAFMHiJ2Ua2jv7wYdxrsi2ACZyO2Ct MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjcwNy9CNEFDRTE2NDcw QjYxMUU0OUNDQUYxNkZDNEY5QUUwMi93ZUluWlJyYU9fdkJoM0d1eUxZQUpuSTdZ SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dlSW5aUnJhT192QmgzR3V5TFlBSm5JN1lLMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTI3MDcvQjRBQ0UxNjQ3MEI2MTFFNDlDQ0FGMTZGQzRGOUFFMDIvMzk5MzI3MjQ1 Nzg2MTFFQThDQzNCMTI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnKyYwDQYJKoZIhvcNAQELBQADggEBALBanwKyF+a+b6Zz Dy1Nh03i1ZaTqWGUyz/h0Gtp4RF7hW2ClEGnLqV0PRHOzdD0ZkN4k39zJJjuo5Lz C4btbPDKSg3mefZZMy1Os1zAOnkn+Ta39ZWEK/cFS2FXBC+o6eCg7ifGi88ti+4j y1AQYnlEyI4j29OTr541VYdfAdOQO6MKHUeSk2gfU6Q+szLCt+vIeL5VeyJf8jpI I4H2E53HXk8pgn3fCKbvCUbRvStaUn796pKrH+uD/aq4oPirXQOdDqQBfECImlyk n8XuMeJRWe1jZazqphEslPhoAWAI384AKmWovpFAOZO9I1HGjGn/Aijnj5th7Sa4 0GpT1so= -----END CERTIFICATE-----Generated at Sun Feb 16 15:07:29 2025 by rpki-client